Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
File:                     OGKIZa_YpN-v3e-BHvz8ecA4czI.mft (raw, json)
Hash identifier:          XYkJ8Gwet6pKjTDNkKQUU/YoArWmqa8Z+okA6pSnRec=
Subject key identifier:   E0:EA:0A:9E:77:2B:2E:0C:9A:19:62:CE:6F:D4:E7:A5:FF:AC:63:79
Authority key identifier: 38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
Certificate issuer:       /CN=38628865afd8a4dfafddef811efcfc79c0387332
Certificate serial:       01975045B3220E5F81EE0A481A6EF5B8F234
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
Manifest number:          0A77
Signing time:             Sun 08 Jun 2025 16:00:34 +0000
Manifest this update:     Sun 08 Jun 2025 16:00:34 +0000
Manifest next update:     Mon 09 Jun 2025 16:00:34 +0000
Files and hashes:         1: OGKIZa_YpN-v3e-BHvz8ecA4czI.crl (hash: f3ZSlxKr7OlCG8qXVSFMN9KCuP0xnLc92hxugk0ML6o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 16:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:45:b3:22:0e:5f:81:ee:0a:48:1a:6e:f5:b8:f2:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=38628865afd8a4dfafddef811efcfc79c0387332
        Validity
            Not Before: Jun  8 16:00:34 2025 GMT
            Not After : Jun  9 16:00:34 2025 GMT
        Subject: CN=e0ea0a9e772b2e0c9a1962ce6fd4e7a5ffac6379
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:c5:b0:f9:14:2f:6e:ea:41:c8:71:c8:d0:06:
                    c5:c1:29:4a:7d:be:01:d9:b4:cf:b1:85:a9:44:99:
                    9d:40:86:01:9d:b6:4c:98:10:48:11:d4:26:7f:78:
                    29:ad:9e:2f:eb:c7:71:7c:f5:0f:e9:d4:03:81:f2:
                    c1:e2:5b:c0:4c:43:6a:4b:a9:8c:87:02:18:57:11:
                    54:03:1f:ba:47:80:f0:73:cc:90:4a:77:ff:bc:0b:
                    a9:ae:8c:bd:b1:a1:bf:7b:11:4d:75:66:ea:21:c2:
                    fb:03:04:70:58:fb:43:3a:02:04:ac:4d:6a:b3:4c:
                    de:0c:87:d8:b5:2d:fc:1e:65:a2:6d:12:87:79:48:
                    c7:63:f1:5f:ad:7d:e3:87:e6:54:17:61:c1:0b:7c:
                    20:67:85:2e:17:17:89:92:14:05:b0:98:ea:fa:bf:
                    3a:42:2a:b1:25:fb:12:28:41:80:ee:f9:8b:b5:62:
                    80:76:bd:65:eb:b5:74:a1:67:c9:f9:07:cf:d0:bf:
                    7c:b1:8b:1e:60:5e:a6:4e:bc:02:a9:f3:b1:27:be:
                    a8:eb:6a:09:15:f2:10:d9:5f:ce:85:fe:62:81:b3:
                    46:5f:4b:3a:b8:e5:cf:f0:d3:d7:63:c1:1e:4c:70:
                    75:71:cd:7b:8d:b4:1d:30:4a:cb:62:2c:ba:19:75:
                    a6:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:EA:0A:9E:77:2B:2E:0C:9A:19:62:CE:6F:D4:E7:A5:FF:AC:63:79
            X509v3 Authority Key Identifier:
                keyid:38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:1c:87:79:65:39:d2:01:c8:95:31:87:d1:b8:b0:ff:21:a6:
         27:d4:38:ce:33:22:b9:63:03:06:b5:f0:79:86:d6:19:21:9b:
         aa:d6:0e:af:99:ec:46:ff:4b:f4:de:46:75:45:8f:e4:d4:2f:
         20:14:50:7e:60:d3:44:66:5e:79:fc:b6:13:da:fd:89:f9:bd:
         8f:ac:87:0b:a2:0f:5f:20:dd:0b:98:ae:c2:e2:92:29:8c:13:
         81:22:08:b4:a8:e1:af:a8:f6:3e:90:49:30:9c:88:f8:51:ce:
         36:fb:01:19:9d:e2:f9:05:2d:ac:37:76:37:d9:f2:71:a4:4d:
         e5:cd:7d:d4:f8:06:90:8b:41:c8:29:9c:9f:d5:dd:2b:f8:a6:
         f3:3e:4f:5a:8e:1f:aa:98:89:22:a4:04:29:19:68:3d:5e:9c:
         b9:cd:f2:c1:c1:ff:8a:20:0e:14:22:6a:15:4f:f7:e1:8c:af:
         63:0b:a9:7d:51:00:a6:ee:9d:56:b3:2a:92:f6:da:5a:a7:bb:
         33:88:bf:42:d5:ac:f9:d3:87:ee:04:83:eb:cd:02:be:cf:74:
         e5:1f:90:21:3b:4c:d5:b8:af:26:3b:32:ab:98:cc:8a:b6:9c:
         99:47:b5:2d:0f:71:fa:23:35:6b:d5:82:a0:6a:c7:40:bf:0f:
         e1:68:47:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----